API Gateway

API Gateways—the Digital Traffic Controller

Maintain the security of your APIs

An API gateway maintains a secure connection between your data and APIs, and manages API traffic, both inside and outside your company.

The Mashery API gateway provides a wide range of policies for fine-grained control over how, when, and from where your user community can access your APIs.

What is an API Gateway?

An API Gateway is a wrapper around a service that separates the interface from the actual backend service or data, and applies policies, authentication, and general access control for API calls to protect valuable data.

Watch the TIBCO Cloud™ Mashery® Demonstration

Benefits

Prevent Unauthorized Access

APIs deliver strong business value, but can also present a serious business risk if your data is compromised. The TIBCO Cloud™ Mashery® API gateway prevents unauthorized access to your production data and backend systems.

Secure Data Transmission

Access control is just one layer of security. Mashery's API management platform also ensures that all data in-transit is fully encrypted to protect against attempts to monitor or intercept it.

Secure Data Transmission

Access control is just one layer of security. Mashery's API management platform also ensures that all data in-transit is fully encrypted to protect against attempts to monitor or intercept it.

Control API Traffic Spikes

The Mashery API Gateway is designed to scale as needed to support API call volumes, but also provides a wide range of policies for fine-grained control over how, when, and from where, your user community can access your APIs.

Choose from Hybrid Deployment Options

Manage your API traffic in the SaaS cloud, on-premises, or any combination of the two. Deploy your API gateways as required to align with the needs of your business and your app infrastructure.

Choose from Hybrid Deployment Options

Manage your API traffic in the SaaS cloud, on-premises, or any combination of the two. Deploy your API gateways as required to align with the needs of your business and your app infrastructure.

Open Source Event-driven Microgateway

Project Mashling™ is a TIBCO open source project for developers who are working with microservices and would like to build evented APIs, or for companies creating IoT applications looking for an ultra-lightweight embeddable microgateway. Go to mashling.io to get started.

Capabilities

Federated Gateways

Deploy and run your API gateways on-premises or in the cloud—and manage them centrally as a single pane of glass.

Traffic Throttling & Caching

Set API traffic limits at the API, method, developer, or key level. Enforce local or global caching and geo routing policies.

Secure Access Control

Use SAML and/or OAuth2 authentication and allow local control of SSL termination and secrets management for keys.

Full Data Encryption

Fully encrypt both inbound and outbound data traffic using SSL. Mashery also supports industry security specifications, such as PCI, HITRUST

Runs in Docker

Deploy Mashery Local to any environment that supports Docker containers, such as Amazon Web Services, Kubernetes, or Azure.

Custom Extension Points

Using our adapter SDK,write your own custom logic for integrating with existing IT infrastructure, such as identity management systems.